The Countdown Block WordPress plugin... CVE-2021-24633

4.0 AV AC AU C I A
发布: 2021-09-27
修订: 2024-11-21

The Countdown Block WordPress plugin before 1.1.2 does not have authorisation in the eb_write_block_css AJAX action, which allows any authenticated user, such as Subscriber, to modify post contents displayed to users.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息